ff454d9362adfd1b841e313f581b9b6299d1678f32b43b1d3ed6bc9713449106

Sharing

Copy URL Twitter E-mail

General

Target

ff454d9362adfd1b841e313f581b9b6299d1678f32b43b1d3ed6bc9713449106
Size

5.6MB
MD5

a134e671ec85bbc71d7a9724192dc340
SHA1

33765066221d546ba7abd56834c6cc9fd656410b
SHA256

ff454d9362adfd1b841e313f581b9b6299d1678f32b43b1d3ed6bc9713449106
SHA512

06f3eb01b7d43b0a2aeabd5e50a251592ca35b9302b2ef58c655143472cbf805bdc82944678bf8da4c08da945b8c0396506e8dc15d6c60c4b7786195ed584375
SSDEEP

49152:RzoNKS6AOLgW4Bt10/YkNDSoM0ntiW23wD6lit9E7j/SgiwefzJauRDdpHQ9Ti4:R8NKKOb+Td0cghshiweftaSQ9R

Score

1^/10

Malware Config

Signatures

Files

ff454d9362adfd1b841e313f581b9b6299d1678f32b43b1d3ed6bc9713449106
.exe windows:4 windows x86 arch:x86

ecc6c7cca972d25171b3b64144e0f50c

Code Sign

0a:c5:79:91:9c:3d:72:4d:d5:da:4b:7a:41:e3:6a:76
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

15/04/2021, 00:00

Not After

19/04/2024, 23:59

Subject

SERIALNUMBER=1200-01-056148,CN=Sky Co.\, LTD.,OU=ICT-Solution,O=Sky Co.\, LTD.,L=Osaka-city,ST=Osaka,C=JP,1.3.6.1.4.1.311.60.2.1.3=#13024a50,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

b9:da:4f:de:04:3b:81:e7:f9:08:95:d8:90:cc:b9:ce:25:51:41:36:67:5e:b9:b8:af:98:79:8b:5d:31:56:e3
Signer

Actual PE Digest

b9:da:4f:de:04:3b:81:e7:f9:08:95:d8:90:cc:b9:ce:25:51:41:36:67:5e:b9:b8:af:98:79:8b:5d:31:56:e3

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

f:\SCV\SkyFileProtectDriver\SkyWPDrvAPDrv\SkyWPDrvAPDrvSetup\Release\SkyWPDrvAPDrvSetup.pdb

Imports

kernel32

GetConsoleMode
GetLocaleInfoW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
GetConsoleCP
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStringTypeW
GetStringTypeA
GetTimeZoneInformation
Sleep
MoveFileW
GetThreadContext
WaitForMultipleObjectsEx
TerminateThread
SetThreadPriorityBoost
LoadLibraryW
SetFilePointerEx
CreateDirectoryW
RemoveDirectoryW
SetConsoleCtrlHandler
MoveFileExW
SetFileAttributesW
GetPrivateProfileSectionNamesA
WritePrivateProfileSectionA
GetLogicalDrives
GetSystemDefaultUILanguage
OpenThread
InterlockedCompareExchange
GetTempPathA
GetLongPathNameA
GetProcessAffinityMask
GetThreadPriority
SetThreadAffinityMask
VerifyVersionInfoW
GetPrivateProfileSectionA
GetFileSizeEx
ReadProcessMemory
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
IsBadStringPtrW
IsBadWritePtr
IsBadStringPtrA
ResetEvent
OpenEventA
CompareFileTime
SystemTimeToTzSpecificLocalTime
VerSetConditionMask
VerifyVersionInfoA
GetSystemWindowsDirectoryA
GetSystemWindowsDirectoryW
FindNextFileW
GetLongPathNameW
GetVolumeInformationW
QueryDosDeviceW
GetDriveTypeW
GetFileAttributesW
FindFirstFileW
GetSystemTime
FindNextFileA
GetSystemDefaultLCID
GetModuleHandleW
CreateFileW
GetPrivateProfileIntW
GetPrivateProfileStringW
GetFileAttributesExW
OpenProcess
GetStdHandle
HeapCreate
HeapDestroy
VirtualFree
FatalAppExitA
LCMapStringW
LCMapStringA
IsValidCodePage
GetACP
HeapSize
GetStartupInfoA
GetProcessHeap
GetCommandLineA
CreateThread
ExitThread
GetDateFormatA
GetTimeFormatA
GetSystemTimeAsFileTime
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
ExitProcess
VirtualQuery
VirtualAlloc
VirtualProtect
HeapReAlloc
HeapFree
HeapAlloc
RtlUnwind
RaiseException
GetFileTime
SetFileTime
LocalFileTimeToFileTime
FileTimeToLocalFileTime
SetErrorMode
GetOEMCP
GetCPInfo
SystemTimeToFileTime
FileTimeToSystemTime
GetAtomNameA
GetShortPathNameA
GetFullPathNameA
GetVolumeInformationA
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
ReadFile
GetThreadLocale
MoveFileA
GlobalFlags
GetCurrentDirectoryA
WritePrivateProfileStringA
GetPrivateProfileIntA
InterlockedIncrement
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
GetVersionExA
GetModuleFileNameW
FreeResource
GlobalAddAtomA
CreateEventA
SuspendThread
SetEvent
SetThreadPriority
GlobalDeleteAtom
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
lstrcmpA
GlobalFree
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
MulDiv
QueryDosDeviceA
DeviceIoControl
LocalAlloc
GetTickCount
CreateWaitableTimerA
SetWaitableTimer
GetExitCodeThread
ResumeThread
GetSystemInfo
CopyFileA
MoveFileExA
DeleteFileA
FindFirstFileA
SetFileAttributesA
InterlockedDecrement
FindClose
SetLastError
FindResourceA
LoadResource
LockResource
SizeofResource
LoadLibraryA
lstrlenA
FreeLibrary
GetCurrentProcess
GetPrivateProfileStringA
GetVersionExW
GetStringTypeExW
GetStringTypeExA
GetEnvironmentVariableW
GetEnvironmentVariableA
lstrcmpiW
lstrcmpiA
CompareStringW
CompareStringA
lstrlenW
LocalFree
GetVersion
WideCharToMultiByte
MultiByteToWideChar
InterlockedExchange
GetLastError
GetSystemDirectoryA
GetModuleFileNameA
GetFileAttributesA
CreateDirectoryA
CreateMutexA
WaitForSingleObject
GetLocalTime
GetCurrentThreadId
GetCurrentProcessId
GetFileAttributesExA
CreateFileA
SetFilePointer
WriteFile
CloseHandle
ReleaseMutex
GetModuleHandleA
GetProcAddress
DeleteFileW

user32

EndPaint
BeginPaint
SetCapture
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
FillRect
DeleteMenu
LoadCursorA
GetDC
ReleaseDC
GetSysColorBrush
ScrollWindowEx
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
GetClassLongA
GetClassNameA
WindowFromPoint
GetPropA
RemovePropA
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
GetMessagePos
MapWindowPoints
ScrollWindow
TrackPopupMenuEx
TrackPopupMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ReleaseCapture
WaitMessage
DestroyIcon
GetDialogBaseUnits
MessageBoxA
AppendMenuA
GetSystemMenu
GetWindowRect
UnregisterClassA
TranslateAcceleratorA
SetMenu
BringWindowToTop
SetRectEmpty
CreatePopupMenu
InsertMenuItemA
InvalidateRect
LoadAcceleratorsA
LoadMenuA
ReuseDDElParam
UnpackDDElParam
GetKeyNameTextA
MapVirtualKeyA
IsRectEmpty
SetForegroundWindow
ShowScrollBar
UpdateWindow
GetClientRect
GetMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
PtInRect
SetWindowPlacement
GetDlgCtrlID
DefWindowProcA
SetParent
UnionRect
SetRect
SetTimer
KillTimer
GetDCEx
LockWindowUpdate
SendMessageA
EnableWindow
SetPropA
GetSystemMetrics
wsprintfA
GetWindowDC
CharLowerA
CharLowerW
CharUpperA
CallWindowProcA
SetWindowLongA
SetWindowPos
OffsetRect
IntersectRect
IsIconic
GetWindowPlacement
GetWindow
GetSysColor
SystemParametersInfoA
DestroyMenu
GetMenuItemInfoA
InflateRect
CopyRect
UnhookWindowsHookEx
GetDesktopWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindow
GetDlgItem
GetNextDlgTabItem
EndDialog
GetWindowThreadProcessId
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
ShowOwnedPopups
SetCursor
SetWindowsHookExA
CallNextHookEx
GetMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
GetCursorPos
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
GetFocus
GetParent
ModifyMenuA
EnableMenuItem
CheckMenuItem
PostMessageA
PostQuitMessage
GetMenuState
GetMenuStringA
GetMenuItemID
InsertMenuA
GetMenuItemCount
GetSubMenu
RemoveMenu
PeekMessageA
TranslateMessage
DispatchMessageA
wsprintfW
LoadStringA
MsgWaitForMultipleObjects
PostThreadMessageA
LoadIconA
CharUpperW

advapi32

SetSecurityDescriptorDacl
RegQueryInfoKeyA
DuplicateToken
ImpersonateLoggedOnUser
RevertToSelf
AddAccessAllowedAce
RegOpenKeyExW
RegQueryValueExW
ChangeServiceConfigA
RegCreateKeyA
RegQueryValueA
RegEnumKeyA
RegOpenKeyA
RegSetValueA
QueryServiceStatus
StartServiceA
ControlService
OpenSCManagerA
OpenServiceA
CloseServiceHandle
GetTokenInformation
ConvertSidToStringSidA
RegEnumKeyExA
RegDeleteKeyA
RegEnumValueA
RegGetKeySecurity
GetSecurityDescriptorDacl
GetAclInformation
LookupAccountNameA
GetLengthSid
GetAce
InitializeAcl
EqualSid
AddAce
CopySid
InitializeSecurityDescriptor
RegSetKeySecurity
RegDeleteValueA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegQueryValueExA
BuildTrusteeWithSidA
SetEntriesInAclA
SetNamedSecurityInfoA
GetNamedSecurityInfoA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
QueryServiceConfigA
EnumDependentServicesA
DeleteService
CreateServiceA
RegOpenCurrentUser

ole32

CoCreateGuid
CoTaskMemFree
SetConvertStg
WriteFmtUserTypeStg
WriteClassStg
OleRegGetUserType
ReadFmtUserTypeStg
ReadClassStg
StringFromCLSID
CoTreatAsClass
CLSIDFromString
StringFromGUID2
CoCreateInstance
CoDisconnectObject
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CreateBindCtx

shell32

SHGetPathFromIDListW
SHGetSpecialFolderPathA
SHGetMalloc
SHGetFolderPathA
ExtractIconA
SHGetFileInfoA
DragFinish
DragQueryFileA
SHGetSpecialFolderLocation
SHGetPathFromIDListA

oleaut32

SysAllocString
GetErrorInfo
SetErrorInfo
CreateErrorInfo
VarBstrFromDate
VarCyFromStr
VarDecFromStr
VarBstrFromDec
VarBstrFromCy
VarDateFromStr
SysStringLen
SysFreeString
SysAllocStringByteLen
SysStringByteLen
VariantClear
VariantChangeType
VariantInit
SysAllocStringLen
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
SafeArrayRedim
VariantCopy
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayCopy
SafeArrayGetElement
SafeArrayPtrOfIndex
SafeArrayPutElement
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
VariantTimeToSystemTime
SystemTimeToVariantTime
SysReAllocStringLen

shlwapi

PathRemoveBackslashA
PathCombineW
StrStrIA
PathIsUNCServerW
PathIsUNCServerA
StrStrIW
PathAppendW
PathStripToRootW
PathIsUNCW
PathIsDirectoryW
PathIsRelativeA
SHDeleteKeyA
PathMatchSpecW
PathFileExistsW
PathFindFileNameW
StrTrimA
StrTrimW
PathAppendA
PathIsNetworkPathA
PathAddBackslashA
PathIsDirectoryA
PathRemoveFileSpecA
PathRemoveFileSpecW
PathFileExistsA
PathCombineA
PathFindExtensionA
PathRemoveExtensionA
PathFindFileNameA
PathStripToRootA
PathGetDriveNumberA
PathStripPathA
PathStripPathW
PathGetCharTypeA
PathGetCharTypeW
PathGetDriveNumberW
PathIsNetworkPathW
PathAddBackslashW
PathIsUNCA

gdi32

DeleteObject
SelectClipRgn
GetClipRgn
CreateRectRgn
SelectClipPath
GetViewportExtEx
SetBkColor
GetPixel
StartDocA
PtVisible
RectVisible
TextOutA
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetCurrentPositionEx
ArcTo
PolyDraw
PolylineTo
SetColorAdjustment
ExtSelectClipRgn
DeleteDC
CreateDIBPatternBrushPt
CreatePatternBrush
GetStockObject
SelectPalette
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
CreatePen
ExtCreatePen
CreateSolidBrush
CreateHatchBrush
GetTextMetricsA
CreateRectRgnIndirect
SetRectRgn
CombineRgn
GetMapMode
PatBlt
DPtoLP
CreateCompatibleBitmap
GetCharWidthA
CreateFontA
StretchDIBits
GetBkColor
SetArcDirection
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
MoveToEx
LineTo
OffsetClipRgn
IntersectClipRect
ExcludeClipRect
SetMapMode
ModifyWorldTransform
SetWorldTransform
SetGraphicsMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
PolyBezierTo
SaveDC
GetDeviceCaps
SetTextColor
GetClipBox
GetDCOrgEx
GetTextExtentPoint32A
ExtTextOutA
BitBlt
CreateCompatibleDC
CreateFontIndirectA
GetObjectA
CreateBitmap
CreateDCA
CopyMetaFileA
GetWindowExtEx
GetTextExtentExPointA
GetTextExtentExPointW

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

ws2_32

inet_ntoa
htonl

rpcrt4

UuidToStringW
UuidFromStringW
RpcStringFreeW

psapi

GetModuleFileNameExW
GetModuleFileNameExA
GetModuleBaseNameA
GetModuleBaseNameW

mpr

WNetGetConnectionW
WNetGetConnectionA

crypt32

CryptFindOIDInfo
CertRDNValueToStrW
CryptQueryObject
CertFindCertificateInStore
CertFreeCertificateContext
CertCloseStore
CryptDecodeObjectEx
CertGetNameStringA
CryptMsgUpdate
CryptMsgGetParam
CertOpenStore
CryptMsgClose
CryptDecodeObject
CertGetCertificateChain
CertVerifyCertificateChainPolicy
CertFreeCertificateChain
CryptMsgOpenToDecode
CertVerifyTimeValidity

wintrust

CryptCATCatalogInfoFromContext
CryptCATAdminReleaseContext
CryptCATAdminReleaseCatalogContext
CryptCATAdminCalcHashFromFileHandle
CryptCATAdminEnumCatalogFromHash
CryptCATAdminAcquireContext

userenv

GetProfilesDirectoryA

imagehlp

SymGetModuleInfo
SymFunctionTableAccess
SymGetSymFromAddr
SymCleanup
SymInitialize
SymGetModuleBase
StackWalk

Sections

.text
Size: 4.4MB - Virtual size: 4.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 760KB - Virtual size: 758KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 360KB - Virtual size: 383KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ecc6c7cca972d25171b3b64144e0f50c

Code Sign

0a:c5:79:91:9c:3d:72:4d:d5:da:4b:7a:41:e3:6a:76Certificate

Extended Key Usages

Key Usages

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5cCertificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

b9:da:4f:de:04:3b:81:e7:f9:08:95:d8:90:cc:b9:ce:25:51:41:36:67:5e:b9:b8:af:98:79:8b:5d:31:56:e3Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

advapi32

ole32

shell32

oleaut32

shlwapi

gdi32

comdlg32

winspool.drv

version

ws2_32

rpcrt4

psapi

mpr

crypt32

wintrust

userenv

imagehlp

Sections

.text Size: 4.4MB - Virtual size: 4.4MB

.rdata Size: 760KB - Virtual size: 758KB

.data Size: 360KB - Virtual size: 383KB

.rsrc Size: 20KB - Virtual size: 19KB

0a:c5:79:91:9c:3d:72:4d:d5:da:4b:7a:41:e3:6a:76
Certificate

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

b9:da:4f:de:04:3b:81:e7:f9:08:95:d8:90:cc:b9:ce:25:51:41:36:67:5e:b9:b8:af:98:79:8b:5d:31:56:e3
Signer

.text
Size: 4.4MB - Virtual size: 4.4MB

.rdata
Size: 760KB - Virtual size: 758KB

.data
Size: 360KB - Virtual size: 383KB

.rsrc
Size: 20KB - Virtual size: 19KB